Researchers have uncovered critical security vulnerabilities in several widely used keyboard apps, including those from major tech giants Samsung, OPPO, Vivo, and Xiaomi.
These flaws could allow network eavesdroppers to intercept and decipher every keystroke a user makes, exposing sensitive personal and financial information.
The Citizen Lab’s comprehensive study focused on the security of cloud-based pinyin keyboard apps from nine different vendors.
The analysis included popular brands such as Baidu, Honor, Huawei, iFlytek, OPPO, Samsung, Tencent, Vivo, and Xiaomi.
Researchers meticulously examined how these apps transmit users’ keystrokes and searched for any vulnerabilities that could be exploited.
Free Webinar | Mastering WAAP/WAF ROI Analysis | Book Your Spot
The findings were alarming: eight of the nine vendors had apps vulnerable to interception.
Keystrokes Capture
This means that an attacker could potentially capture…